From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from mailman by lists.gnu.org with tmda-scanned (Exim 4.43) id 1LVYhQ-0005cP-3G for qemu-devel@nongnu.org; Fri, 06 Feb 2009 16:57:24 -0500 Received: from exim by lists.gnu.org with spam-scanned (Exim 4.43) id 1LVYhP-0005bF-C4 for qemu-devel@nongnu.org; Fri, 06 Feb 2009 16:57:23 -0500 Received: from [199.232.76.173] (port=49194 helo=monty-python.gnu.org) by lists.gnu.org with esmtp (Exim 4.43) id 1LVYhO-0005b6-TD for qemu-devel@nongnu.org; Fri, 06 Feb 2009 16:57:22 -0500 Received: from fmmailgate02.web.de ([217.72.192.227]:59749) by monty-python.gnu.org with esmtp (Exim 4.60) (envelope-from ) id 1LVYhO-0003ej-9w for qemu-devel@nongnu.org; Fri, 06 Feb 2009 16:57:22 -0500 Received: from smtp06.web.de (fmsmtp06.dlan.cinetic.de [172.20.5.172]) by fmmailgate02.web.de (Postfix) with ESMTP id A045CFA10416 for ; Fri, 6 Feb 2009 22:57:18 +0100 (CET) Received: from [88.65.43.151] (helo=[192.168.1.198]) by smtp06.web.de with asmtp (TLSv1:AES256-SHA:256) (WEB.DE 4.110 #277) id 1LVYhK-0005WG-00 for qemu-devel@nongnu.org; Fri, 06 Feb 2009 22:57:18 +0100 Message-ID: <498CB23B.4020209@web.de> Date: Fri, 06 Feb 2009 22:57:15 +0100 From: Jan Kiszka MIME-Version: 1.0 References: <1233954540-4754-1-git-send-email-ehabkost@redhat.com> In-Reply-To: <1233954540-4754-1-git-send-email-ehabkost@redhat.com> Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="------------enig7BF9F22D78B36A673C8171D0" Sender: jan.kiszka@web.de Subject: [Qemu-devel] Re: [PATCH 0/9] encryption code changes Reply-To: qemu-devel@nongnu.org List-Id: qemu-devel.nongnu.org List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , To: qemu-devel@nongnu.org This is an OpenPGP/MIME signed message (RFC 2440 and 3156) --------------enig7BF9F22D78B36A673C8171D0 Content-Type: text/plain; charset=ISO-8859-15 Content-Transfer-Encoding: quoted-printable Eduardo Habkost wrote: > Hi, >=20 > This patch series for qemu contain multiple changes on the way encrypti= on > and authentication code is handled. >=20 > The first patch is a behaviour change to avoid silent security holes on= > the VNC server caused by user configuration errors. >=20 > Patches 2 and 3 are bugfixes to some of the multiple problems > I had with monitor_readline(), when testing the qcow encryption > support. monitor_readline() is still not completely functional, but > at least it allows the qcow password to be read when an qcow encrypted > image is specified on the command-line, now. Don't worry about monitor and readline, I'm reworking it ATM, hope being able to post the result by the end of this WE. It's true there are more fundamental things broken (VM is blocked while reading passwords, console mux'ing is clumsy), and some things are still broken even with your patches (mounting encrypted USB disks on startup, reading passwords from virtual consoles). Sigh, this all looked trivial to get right on first sight but turned out to be _much_ more freaky... Jan --------------enig7BF9F22D78B36A673C8171D0 Content-Type: application/pgp-signature; name="signature.asc" Content-Description: OpenPGP digital signature Content-Disposition: attachment; filename="signature.asc" -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.9 (GNU/Linux) Comment: Using GnuPG with SUSE - http://enigmail.mozdev.org iEYEARECAAYFAkmMsj4ACgkQniDOoMHTA+nG3ACfUxmU4oBSAhqiULAXp9I+O42B bf8AnirnnjLMMRsHJD5EuPRxkCMeqd48 =aKaE -----END PGP SIGNATURE----- --------------enig7BF9F22D78B36A673C8171D0--